Vacancy expired!
Deloitte & Touche LLP seeksa Advisory Project Associate 6in Williamsville, NY.Work You ll DoPerform a key role in conducting new pattern or style of third-party assessment for existing or new clients and translating findings to internal teams. Perform project management, including client resources and teams, risk evaluations, assessment kick-off, post-assessment issues, and liaise with client executives. Mentor and train junior team members, including review of their work. Gather operational data from stakeholders and produce meaningful dashboards to leadership for strategic decision making and for gaining an understanding team function. Create reference documents, processes and playbooks by combining internally developed and client-based methodologies to ensure access to resources and consistency across the team, in accordance with new client partnerships. Support business development, including drafting Statement of Work (SOW) and Product Requirements Document (PRD), and architecting entity partnerships. Assist in the selection and tailoring of third-party cyber risk management approaches, methods and tools to support delivery of third-party cyber risk assessment services, including use of technology-based tools or methodologies to review, design and/or implement third-party cyber risk assessment services. Perform ongoing third-party risk assessments to assist clients identify and evaluate complex business and technology risks related to third parties, and provide recommendations for managing those risks. Perform quality assurance of assessment reports.#LI-DNIRequirements
Bachelor's (or higher) degree in Information Technology, Management Information Systems, Engineering, Computer Science, Business Administration, or related field (willing to accept foreign education equivalent).
Eighteen months of information security and compliance experience.
Experience must include eighteen months of:
Analyzing clients' cyber security and compliance structure to build effective controls to address, investigate, and document day-to-day internal IT risks;
Conducting third-party cyber risk assessments to assess third-party s information security program and developing assessment documentation, including pre-assessment questionnaire, post-assessment reports, and remediation recommendations;
Providing third-party vendor cyber risk assessments in the Financial Services, Aerospace & Defense, and Life Sciences & HealthCare industries;
Providing third-party remediation support to mitigate findings/gaps from cyber risk assessments;
Providing controls refinement inputs to Information Security teams on a periodic basis, preparing post-assessment deliverables, including assessment reports and status reports to clients, and developing periodic reports of key risk indicators, including a status of all remediated and unremediated risks;
Conducting regulatory compliance assessments to identify gaps in security policies, regulatory requirements, and industry accepted standards, including ISO 27001/27002, ISO 9001:2008, NIST-SP-800-53, NIST-SP-800-171, FFIEC, HIPAA, OCC 2013, PM40 and SOC1/2; and
Assisting in the selection and tailoring of third-party cyber risk management approaches, methods and tools to support delivery of third-party cyber risk assessment services, including use of technology-based tools or methodologies to review, design, and implement third-party cyber risk assessment services.
BenefitsAt Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. at http://www2.deloitte.com/us/en/pages/careers/articles/life-at-deloitte-benefits-and-rewards.htmlDeloitte s cultureOur positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.Corporate citizenshipDeloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte s impact on the world. at http://www2.deloitte.com/us/en/pages/careers/topics/recruiting-tips.htmlRecruiter tipsWe want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you re applying to. We also suggest that you brush up on your behavioral and case interviewing skills and practice discussing your experience and job history with a family member, friend, or mentor. Check out recruiting tips from Deloitte professionals. at http://www2.deloitte.com/us/en/pages/careers/topics/recruiting-tips.htmlCategory: Accounting & AuditingAbout Deloitte As used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Vacancy expired!